$ rpki-client -vvf rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/A4049C06213E11EAAA89A95DC4F9AE02.roa File: A4049C06213E11EAAA89A95DC4F9AE02.roa (raw, json) Hash identifier: UbwOi9U9kZof7b43F/HRMpxGF4fX5ioRAi/qvaW/Bgw= Subject key identifier: BB:96:94:93:D2:75:13:66:2E:21:80:2B:CA:EE:C0:7F:FB:67:63:4C Certificate issuer: /CN=A9119624/serialNumber=D8222F5CA473962244FC134115710EBED5E39560 Certificate serial: 0C9C Authority key identifier: D8:22:2F:5C:A4:73:96:22:44:FC:13:41:15:71:0E:BE:D5:E3:95:60 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/A4049C06213E11EAAA89A95DC4F9AE02.roa Signing time: Sun 01 Mar 2026 13:50:34 +0000 ROA not before: Tue 04 Nov 2025 18:07:08 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 136972 IP address blocks: 161.38.216.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.crl rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Mar 2026 23:27:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3228 (0xc9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119624, serialNumber=D8222F5CA473962244FC134115710EBED5E39560 Validity Not Before: Nov 4 18:07:08 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69a4442a-e8eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:71:10:4a:21:a4:d7:b6:b8:c8:9c:3e:24:a6: eb:b0:a8:bb:5d:75:2a:7a:64:7f:83:de:75:95:c0: cf:7a:7a:31:08:4a:1f:7e:42:0c:6e:a7:cb:83:7d: 4a:8b:19:5b:49:de:d4:40:b6:e4:06:e3:47:59:69: 1c:9d:eb:ec:62:a8:5c:9f:d8:4e:47:c3:ad:12:75: 01:68:70:84:a7:bc:0d:7c:69:ee:d5:2c:24:f0:c1: eb:8c:bb:ac:60:12:8e:c1:d8:4c:d3:b8:40:48:62: 0b:56:57:7f:71:a7:28:44:99:04:46:96:cc:6b:13: 36:dd:2c:58:22:35:4b:8f:30:39:27:30:05:40:e6: 4e:d2:19:66:7a:0d:51:e6:ee:5b:5a:c3:20:fd:53: 9c:ac:8f:10:10:d0:00:85:14:61:46:6b:47:65:86: 4e:7b:ee:fc:7d:ca:5d:ec:fb:bb:fe:e1:d9:e8:c2: 4b:b5:b5:9d:5d:de:ee:17:0d:3a:b1:37:12:95:93: e4:11:39:f5:9c:25:4b:a8:d6:3a:54:c2:17:04:09: f1:18:17:79:48:b0:12:ac:f4:6a:c1:a6:31:0c:2a: 95:92:6a:ac:fd:4d:8c:b8:d5:77:a2:d4:3a:00:26: 0b:91:cd:fd:98:41:b0:e4:63:a9:f6:5c:d2:b4:1d: 06:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:96:94:93:D2:75:13:66:2E:21:80:2B:CA:EE:C0:7F:FB:67:63:4C X509v3 Authority Key Identifier: keyid:D8:22:2F:5C:A4:73:96:22:44:FC:13:41:15:71:0E:BE:D5:E3:95:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/2CIvXKRzliJE_BNBFXEOvtXjlWA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2CIvXKRzliJE_BNBFXEOvtXjlWA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119624/C694823610E011EA9BD1A55DC4F9AE02/A4049C06213E11EAAA89A95DC4F9AE02.roa sbgp-ipAddrBlock: critical IPv4: 161.38.216.0/23 Signature Algorithm: sha256WithRSAEncryption 89:73:2f:b5:98:4d:f6:39:bb:55:1a:0e:9e:6e:5c:3b:c6:08: d1:ca:8f:03:de:c0:c3:4a:60:2a:d2:6b:2b:4d:a3:ed:ab:b2: 1a:06:75:f5:67:e8:08:08:fe:8d:b7:d5:6e:12:d3:82:10:8c: aa:05:b9:8f:b3:57:78:50:04:54:71:7f:3c:a0:eb:5c:05:fd: 21:ff:d3:8d:c9:b0:b1:83:06:16:11:ca:2a:bd:e2:ed:c5:0a: 95:a0:67:93:e6:39:57:99:e8:2f:08:ff:11:6d:95:4e:90:ea: 2d:cd:31:97:53:93:b7:16:52:f5:7a:4d:4b:3d:a8:bf:a1:02: 36:73:b0:f6:8e:84:08:b9:52:fd:04:5a:53:2a:9d:83:42:0c: 21:d0:1c:6e:9c:be:2a:e5:21:57:75:ab:7b:e7:51:ca:77:5a: 76:36:c7:8d:0d:a4:9b:26:db:0e:ad:3f:8d:7d:b4:c6:80:15: 15:e7:fc:58:e0:e9:d9:b5:08:96:b6:de:cc:eb:b4:66:1c:88: b0:e5:cd:c1:91:3d:4c:4b:ac:ac:5d:f4:51:b4:4e:cf:55:46: 31:52:20:f4:2b:bf:8a:1c:ba:6b:d0:3d:28:55:00:11:36:9f: 5c:bb:03:2d:ac:f9:66:8a:e3:a2:08:66:11:9c:58:e8:ea:61: 6e:fa:a6:75 -----BEGIN CERTIFICATE----- MIIFPDCCBCSgAwIBAgICDJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk2MjQxMTAvBgNVBAUTKEQ4MjIyRjVDQTQ3Mzk2MjI0NEZDMTM0MTE1NzEwRUJF RDVFMzk1NjAwHhcNMjUxMTA0MTgwNzA4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OWE0NDQyYS1lOGViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3EQSiGk17a4yJw+JKbrsKi7XXUqemR/g951lcDPenoxCEoffkIMbqfLg31K ixlbSd7UQLbkBuNHWWkcnevsYqhcn9hOR8OtEnUBaHCEp7wNfGnu1Swk8MHrjLus YBKOwdhM07hASGILVld/cacoRJkERpbMaxM23SxYIjVLjzA5JzAFQOZO0hlmeg1R 5u5bWsMg/VOcrI8QENAAhRRhRmtHZYZOe+78fcpd7Pu7/uHZ6MJLtbWdXd7uFw06 sTcSlZPkETn1nCVLqNY6VMIXBAnxGBd5SLASrPRqwaYxDCqVkmqs/U2MuNV3otQ6 ACYLkc39mEGw5GOp9lzStB0GLwIDAQABo4ICYDCCAlwwHQYDVR0OBBYEFLuWlJPS dRNmLiGAK8ruwH/7Z2NMMB8GA1UdIwQYMBaAFNgiL1ykc5YiRPwTQRVxDr7V45Vg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTYyNC9DNjk0ODIzNjEw RTAxMUVBOUJEMUE1NURDNEY5QUUwMi8yQ0l2WEtSemxpSkVfQk5CRlhFT3Z0WGps V0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJDSXZYS1J6bGlKRV9CTkJGWEVPdnRYamxXQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGWBggrBgEFBQcBCwSBiTCBhjCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTk2MjQvQzY5NDgyMzYxMEUwMTFFQTlCRDFBNTVEQzRGOUFFMDIvQTQwNDlDMDYy MTNFMTFFQUFBODlBOTVEQzRGOUFFMDIucm9hMB8GCCsGAQUFBwEHAQH/BBAwDjAM BAIAATAGAwQBoSbYMA0GCSqGSIb3DQEBCwUAA4IBAQCJcy+1mE32ObtVGg6eblw7 xgjRyo8D3sDDSmAq0msrTaPtq7IaBnX1Z+gICP6Nt9VuEtOCEIyqBbmPs1d4UARU cX88oOtcBf0h/9ONybCxgwYWEcoqveLtxQqVoGeT5jlXmegvCP8RbZVOkOotzTGX U5O3FlL1ek1LPai/oQI2c7D2joQIuVL9BFpTKp2DQgwh0BxunL4q5SFXdat751HK d1p2NseNDaSbJtsOrT+NfbTGgBUV5/xY4OnZtQiWtt7M67RmHIiw5c3BkT1MS6ys XfRRtE7PVUYxUiD0K7+KHLpr0D0oVQARNp9cuwMtrPlmiuOiCGYRnFjo6mFu+qZ1 -----END CERTIFICATE-----Generated at Mon Mar 2 18:35:12 2026 by rpki-client